Security bypass vulnerability in IBM Tivoli Directory Server (TDS)ID: oval:org.secpod.oval:def:1703 | Date: (C)2011-08-02 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM Tivoli Directory Server 6.2 before 6.2.0.3-TIV-ITDS-IF0004 and is prone to a security bypass vulnerability. A flaw is present in the Web Administration Tool, which fails to prevent auto completion of passwords in IDSWebApp login page. Successful exploitation could allow an attacker to bypass security and obtain access to an unattended workstation.
Platform: |
Microsoft Windows 7 |
Microsoft Windows 2000 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
IBM Tivoli Directory Server |